Comparative analysis of machine learning methods for detecting malicious files
dc.contributor.author | Nafiiev, Alan | |
dc.contributor.author | Kholodulkin, Hlib | |
dc.contributor.author | Rodionov, Andrii | |
dc.date.accessioned | 2023-05-12T04:53:44Z | |
dc.date.available | 2023-05-12T04:53:44Z | |
dc.date.issued | 2021 | |
dc.description.abstract | Nowadays, one of the most critical cyber security problems is the fight against malicious software, precisely, the problem of detecting it. Every year, new modern computer viruses are created that are capable of mutation and changing while running. But unfortunately, the developers of antivirus software do not have time to quickly add all types of malicious programs to the signature databases. In this regard, it is sensible to use heuristic detection methods based on algorithms of machine learning. The purpose of this paper is to present several classification methods based on machine learning techniques for detecting zero-day attacks. In particular, the following algorithms were tested: random forest classifier, support vector classifier, greed search in svc, and k-nearest neighbors. The dataset was taken from the Kaggle website. It consists of 19611 executable files of the PE format, 14599 of which are malicious, and 5012 files are benign. This article presents recommended classification and detection methods with advanced analysis of important metrics that allow you to assess and compare machine learning algorithms’ effectiveness and performance for detecting malware. | uk |
dc.format.pagerange | Pp. 46-50 | uk |
dc.identifier.citation | Nafiiev, A. Comparative analysis of machine learning methods for detecting malicious files / Alan Nafiiev, Hlib Kholodulkin, Andrii Rodionov // Theoretical and Applied Cybersecurity : scientific journal. – 2021. – Vol. 3, Iss. 1. – Pp. 46–50. – Bibliogr.: 9 ref. | uk |
dc.identifier.doi | https://doi.org/10.20535/tacs.2664-29132021.1.251310 | |
dc.identifier.uri | https://ela.kpi.ua/handle/123456789/55588 | |
dc.language.iso | en | uk |
dc.publisher | Igor Sikorsky Kyiv Polytechnic Institute | uk |
dc.publisher.place | Kyiv | uk |
dc.relation.ispartof | Theoretical and Applied Cybersecurity: scientific journal, Vol. 3, No. 1 | uk |
dc.subject | intrusion detection | uk |
dc.subject | malware detection | uk |
dc.subject | PE format | uk |
dc.subject | machine learning | uk |
dc.subject | zero-day | uk |
dc.subject | malware classifiers | uk |
dc.subject.udc | 004.62 | uk |
dc.title | Comparative analysis of machine learning methods for detecting malicious files | uk |
dc.type | Article | uk |
Файли
Контейнер файлів
1 - 1 з 1
Вантажиться...
- Назва:
- 251310-577026-1-10-20220117.pdf
- Розмір:
- 362.5 KB
- Формат:
- Adobe Portable Document Format
- Опис:
Ліцензійна угода
1 - 1 з 1
Ескіз недоступний
- Назва:
- license.txt
- Розмір:
- 9.1 KB
- Формат:
- Item-specific license agreed upon to submission
- Опис: